Privacy policy

GERME S.A. — www.germesa.com
SIRET no.: 316 539 261 00032
Type of site: showcase / informational site

The purpose of this privacy policy is to inform users of our site of the personal data we collect, as well as the following information, where applicable:

  • the personal data we collect;
  • the use of the data collected;
  • who has access to the data collected;
  • the rights of site users;
  • the site’s cookie policy.

This privacy policy applies in addition to the terms and conditions of use of our site.

Applicable laws

In accordance with the General Data Protection Regulation (GDPR), this privacy policy complies with the following standards. Personal data must be:

  • processed lawfully, fairly and transparently with regard to the data subject (lawfulness, fairness, transparency);
  • collected for specified, explicit and legitimate purposes, and not further processed in a manner incompatible with those purposes;
  • adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimisation);
  • accurate and, where necessary, kept up to date;
  • kept in a form that permits identification of data subjects for no longer than is necessary for the purposes for which they are processed (storage limitation);
  • processed in a manner that ensures appropriate security of the personal data (integrity and confidentiality).

Processing is lawful only if and to the extent that at least one of the following conditions is met:

  • the data subject has consented to the processing of their personal data for one or more specific purposes;
  • processing is necessary for the performance of a contract to which the data subject is party;
  • processing is necessary for compliance with a legal obligation to which the controller is subject;
  • processing is necessary to protect the vital interests of the data subject or another natural person;
  • processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority;
  • processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.

For residents of the State of California, this privacy policy aims to comply with the California Consumer Privacy Act (CCPA).

Consent

Users agree that, by using our site, they accept:

  • the conditions set out in this privacy policy;
  • the collection, use and storage of the data listed in this policy.
Personal data we collect
Data collected automatically

We collect certain browsing data via audience-measurement cookies (Google Analytics), subject to your consent.

Data collected non-automatically

We may also collect the following data when you perform certain functions on our site:

  • first and last name;
  • email address;
  • phone number.

This data may be collected by means of our contact form. We only collect the data that helps us achieve the objective stated in this privacy policy, and we will not collect any additional data without informing you beforehand.

How we use personal data

The personal data collected on our site is used only for the purposes specified in this policy or indicated on the relevant pages of our site. The data may be used to:

  • respond to your enquiries.
With whom we share personal data
Employees

We may disclose to any member of our organisation the user data that this member reasonably needs to achieve the objectives set out in this policy.

Third parties

We may share user data with third parties. Third parties will not be able to access user data beyond what is reasonably necessary to achieve the given purpose.

Other disclosures

We undertake not to sell or share your data with third parties, except in the following cases:

  • if required by law;
  • if required for any legal proceedings;
  • to prove or protect our legal rights;
  • to buyers or potential buyers of this company in the event that we seek to sell it.

If you follow hyperlinks from our site to another site, please note that we are not responsible for their privacy policies and practices.

How long we store personal data

Personal data is kept for as long as necessary for the purposes for which it was collected, or to comply with our legal obligations. Once this period has elapsed, the data is securely deleted.

How we protect your personal data

All sensitive information is encrypted using robust technologies. When you connect to our site, your data is transmitted via a secure connection (HTTPS).

Although we take all reasonable precautions to secure our users’ data, some risk always remains. In the event of a security breach affecting your personal information, we will inform you in accordance with our legal obligations.

Minors

The GDPR specifies that persons under the age of 15 are considered minors for the purposes of data collection. Minors must have the consent of a legal representative for their data to be collected, processed and used.

Your rights as a user

Under the GDPR, users have the following rights over their data:

  • right of access;
  • right to rectification;
  • right to erasure;
  • right to restrict processing;
  • right to data portability;
  • right to object.

You will find more information about these rights in chapter 3 (articles 12 to 23) of the GDPR.

How to modify, delete or contest the data collected

If you would like your information to be deleted or modified in any way, please contact us using our contact form.

Cookie policy

A cookie is a small file stored on a user’s hard drive by a website. We use the following types of cookies on our site:

  • analytics cookies: these allow us to improve the design and functionality of our site by collecting data on the content you access and view.

You can choose to be notified each time a cookie is sent, or to disable cookies entirely, by changing the settings of your web browser.

Changes

This privacy policy may be amended from time to time in order to maintain compliance with the law and to reflect any changes to our data collection process.

Contact

If you have any questions, please do not hesitate to contact us:

GERME S.A.
ZAC de la Baronne — Château Gombert
12 rue Marc Donadille
13013 Marseille — France

Effective date of this policy: 9 December 2025.